Hi all, I simple want to do something similar to this but correct. update
column3 where column1=? and column2= ?,val1,val2.
so I was able to come up with this
def foo(val1,val2,val3)
db = db.connect to mysql
db[:Items].filter(:col1=>val1,:col2=>val2l).update(:col3=>val3)
end
so i got that to work. However, I am trying to now sanitize val1,val2,val3.
so i tried doing
db[:Items].filter(:col1=>params[val1].to_s,:col2=>params[val2].to_s).update(:col3=>params[val3].to_s)
I interpreted the one for update and went with it
http://sequel.jeremyevans.net/rdoc/files/doc/security_rdoc.html
I am getting a bunch of errors saying params is not defined. Ideas? I
assume I made a mistake.
Thanks
--
You received this message because you are subscribed to the Google Groups
"sequel-talk" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
Visit this group at http://groups.google.com/group/sequel-talk.
For more options, visit https://groups.google.com/d/optout.
